Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

BCI > Mock Exam > Flashcards

Mock Exam Flashcards

1
Q

GPG Reference: 23

Which of the following is an outcome of assigning roles and responsibilities as part of business continuity policy and programme management?

Training requirements for roles and responsibilities are identified and reviewed in the business continuity policy.

Recruitment requirements are identified and documented in the business continuity policy.

Clear reporting requirements are identified and documented in the business continuity policy.

Roles and responsibilities, and authorities are documented in the business continuity policy.

A

Roles and responsibilities, and authorities are documented in the business continuity policy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

GPG Reference: 14

Who should support, approve, and own the business continuity policy?

Stakeholders.

Top management.

Steering Committee.

Business continuity manager.

A

Top management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

GPG Reference: 98

When undertaking a review of a business continuity programme, which of the following is a basic type of review?

Financial.

Debrief.

Supplier performance.

Risk assessment.

A

Supplier performance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

GPG Reference: 90

A test is defined as a _____type of exercise which incorporates an expectation of a pass or fail element within the goal or objectives of the exercise being planned. (Please select one choice to correctly complete the sentence)

Realistic

Regular

External

Unique

A

Unique.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

GPG Reference: 34

When undertaking training and awareness activities, which of the following should you consider?

Changes in the organization’s website and social media plans.

Changes in actual or perceived threats and vulnerabilities.

Changes to the tactical and operational aspects of business continuity.

Changes to the communication channels in the organization.

A

Changes in actual or perceived threats and vulnerabilities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

GPG Reference: 47

Which outcome is associated with the process business impact analysis (BIA)?

Identification of any processes that have been outsourced by the organization and therefore present an increased risk.

Identification of any processes that have not been documented by the organization and therefore present an increased risk.

Identification of any processes that have not been risk assessed by the organization and therefore present an increased risk.

Identification of any processes that have not been signed off by top management and therefore present an increased risk.

A

Identification of any processes that have been outsourced by the organization and therefore present an increased risk.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

GPG Reference: 70

Which of the following is a key requirement for implementation of an effective business continuity plan?

An ability to recognise and assess existing and potential threats when they occur and to determine an appropriate response.

An ability to measure the length of time that must be allowed following an incident before the organization can initiate recovery of resources.

An ability to document and monitor the possible effects of mitigation measures to effect long-term change and reverse adverse trends.

An ability to monitor the accuracy of risk assessments for an organization and consider longer-term business continuity requirements.

A

An ability to recognise and assess existing and potential threats when they occur and to determine an appropriate response.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

GPG Reference: 16

When developing a business continuity policy, what should be included?

A statement of governance and stakeholder commitment to the policy including reporting requirements.

Details of the other policies, processes, and procedures that should be provided by the organization.

Roles and responsibilities for the business continuity programme including an incident response capability.

A definition of business continuity for use in the organization and a list of the members of the crisis management team.

A

Roles and responsibilities for the business continuity programme including an incident response capability.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

GPG Reference: 32

The assessment of competencies and skills should extend to all ________ who work at the organisation’s site or who provide incident related services. (Please select one choice to correctly complete the sentence)

Contractors.

Suppliers.

Accountants and auditors.

External Bodies.

A

Contractors.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

GPG Reference: 82

What should tactical plans mainly focus on?

Coordinating the response to an incident and facilitating the continuity of prioritised activities.

The information and data required to implement the plan when delivering products and services.

A step by step flow chart for managing the response to a physical disruption, event or incident.

Guidance for prioritising recovery that reduces the need for top management to be involved.

A

Coordinating the response to an incident and facilitating the continuity of prioritised activities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

GPG Reference: 62

What are the key requirements to enable remote working?

Stable electric power and other utilities, adequate ICT facilities, appropriate data security, and a suitable work space to conduct business activities.

Risk assessment documentation to check whether the remote workplace meets health and safety legislation as well as suitable internet connectivity.

Maintaining communication with homeworkers through email, telephone, or video conferencing, and regular face-to-face meetings.

Holding regular meetings in the organization’s designated office, as this can help with keeping in touch with the rest of the business.

A

Stable electric power and other utilities, adequate ICT facilities, appropriate data security, and a suitable work space to conduct business activities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

GPG Reference: 25

What does a business continuity management programme consist of?

Measurement of alignment to current legislation.

Defined response roles for all staff across the organization.

Ongoing budget commitment and financial support.

The business continuity exercise budget and schedule.

A

Ongoing budget commitment and financial support.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

GPG Reference: 51

Which of the following is NOT a key step when undertaking a risk and threat assessment as part of the business continuity programme?

Prioritise the threats based on the risk score for the prioritised activities.

Implement detailed cost and mitigation measures.

Share the outcomes with the relevant interested parties.

Identify unacceptable areas of risk, which may include single points of failure.

A

Implement detailed cost and mitigation measures.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

GPG Reference: 70

What does the response structure establish?

Command, control, and communication systems to help the organization manage the incident and minimise the impact of the disruption.

The organization’s documented processes and procedures to ensure they are effective and signed off by top management.

Command and control financial exposure to protect interested parties as defined by the organization’s top management.

The point at which the organization’s data and information must be restored to enable activities to operate effectively.

A

Command, control, and communication systems to help the organization manage the incident and minimise the impact of the disruption.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

GPG Reference: 16

How frequently should the business continuity policy be reviewed?

At monthly review meetings with the relevant stakeholders.

At pre-agreed intervals or following significant changes.

Annually on the anniversary of when it was approved.

At quarterly review meetings with the relevant stakeholders

A

At pre-agreed intervals or following significant changes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

GPG Reference: 18

Which one of these factors will help prompt decisions on which products and services to include in the scope of the business continuity policy and programme?

A scenario exercise.

A policy requirement.

A third party supplier process.

A Physical Threat.

A

A Physical Threat.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

GPG Reference: 32

Which of the following is an accurate step to ensure that the appropriate level of awareness, education and training is established for successful embedding?

Identify the necessary commitment required by staff selected to take on the role within the business continuity programme.

Create a detailed job description for the business continuity role, including a list of tasks, competencies skills and experience.

Review the current roles of the staff selected for a business continuity role and establish if additional responsibility will impact the business.

Determine the training and awareness needs with learning outcomes for all individuals involved in the business continuity programme.

A

Determine the training and awareness needs with learning outcomes for all individuals involved in the business continuity programme.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

GPG Reference: 63

Which of the following is an important consideration when setting up adequate separation distance between the original and duplicate resources that form the basis of the business continuity solution?

Keeping duplicate copies of vital resources in a remote location.

Duplicating staffing to ensure parallel operations.

Requesting suppliers take on liability of activities on your behalf.

Access to 24 hour public transport links between the sites.

A

Keeping duplicate copies of vital resources in a remote location.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

GPG Reference: 34

Competence reviews following training and awareness activities can be assessed by using which ONE of the following?

Review crisis reports in the media.

External training record comparison.

Observing exercises.

Group coaching.

A

Group coaching.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

GPG Reference: 63

When selecting a safe separation distance between original and duplicate resources that form the basis of the business continuity solution, which one of the following is the most important factor?

Copying documentation to enable activities to be run in duplicate.

If insurance will recover all costs associated with the new location.

Regulatory approval of the location you will be operating from.

How far personnel are able or willing to travel to a relocation site.

A

How far personnel are able or willing to travel to a relocation site.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

GPG Reference: 19

What does governance for business continuity primarily focus on?

Monitoring and reviewing the business continuity programme regularly to ensure the requirements are being met.

Monitoring and reviewing the risk assessment processes regularly to ensure the requirements are being met.

Monitoring and reviewing business continuity training regularly to ensure the requirements are being met.

Monitoring and reviewing the business continuity finances and budget to ensure the requirements are being met.

A

Monitoring and reviewing the business continuity programme regularly to ensure the requirements are being met.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

GPG Reference: 21

To ensure business continuity related tasks are carried out by assigned individuals appropriately, roles and responsibilities should be integrated into:

Monthly reports.

Pay rises.

Job descriptions.

Training records.

A

Job descriptions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

GPG Reference: 58

The solution design process includes identifying suitable solutions that enables the achievement of:

MTPD, RPO and RTO.

MBCO, MTPD and RTO.

MBCO, RPO and RTO.

MBCO, MTPD and RPO.

A

MBCO, RPO and RTO.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

GPG Reference: 23

What is an ongoing management and governance process supported by top management and appropriately resourced to implement and maintain business continuity management?

Business Continuity System.

Business Continuity Programme.

Business Continuity Lifecycle.

Business Continuity Solutions.

A

Business Continuity Programme.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

GPG Reference: 19

A detailed _______ is carried out in the Analysis stage of the business continuity management lifecycle. (Please select one choice to correctly complete the sentence)

Staffing-level review.

Risk Assessment.

Policy Review.

Cost-benefit assessment.

A

Risk Assessment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

GPG Reference: 45

Which ONE of the following is an outcome of a “product/service” business impact analysis (BIA)?

Consider and identify appropriate business continuity strategies to review.

Determine the products or services to be included in the business continuity programme.

Products and services to risk assess as part of the business continuity programme.

Evaluation of impacts over time.

A

Evaluation of impacts over time.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

GPG Reference: 76

Which of the following should NOT be contained within a business continuity plan?

Detailed recovery activities for all incident scenarios identified in the business impact analysis (BIA).

Internal and external interdependencies and interactions, including contact details (usually held as appendices).

Plan activation criteria, procedures, and authorisation, including implementation procedures.

Prompts for immediate action and any specific decisions the team(s) may need to make.

A

Detailed recovery activities for all incident scenarios identified in the business impact analysis (BIA).

28
Q

GPG Reference: 102

Improvement in ________ should be the outcome of Quality Assurance during Validation of the business continuity management lifecycle. (Please select one choice to correctly complete the sentence)

The training programme which defines proposed timings and resource and training requirements.

The financial programme which funds the objectives, methods, resource and training requirements.

The way the outputs from the business continuity programme meet the organization’s requirements and expectations.

The risk assessment programme defining the objectives and methods required along with defining resource requirements and proposed timing.

A

The way the outputs from the business continuity programme meet the organization’s requirements and expectations.

29
Q

GPG Reference: 63

What is a consideration when designing business continuity solutions in relation to interested parties?

The organization should ensure that interested parties are not able to get near to the site of an incident.

The organization should ensure that interested parties are invited in to take part in the various discussions.

The organization should ensure that interested parties have sufficient insurance cover to withstand incidents.

The organization should ensure that the needs of various interested parties are identified, prioritised, and agreed.

A

The organization should ensure that the needs of various interested parties are identified, prioritised, and agreed.

30
Q

GPG Reference: 19

What does the information from the risk assessment and horizon scanning activities provide?

Useful input into the effective implementation of the business continuity management programme.

Useful input into the programme budget requirements.

Useful input into the definition and clarification of the scope of the business continuity programme.

Useful input into the business continuity policy.

A

Useful input into the definition and clarification of the scope of the business continuity programme.

31
Q

GPG Reference: 40

Which one of the following should be considered when conducting a business impact analysis (BIA)?

The urgency of the delivery requirements before disruption for products and/or services that are sourced by the organization from external suppliers.

Determining impacts over time should demonstrate to top management how quickly the organization needs to respond to a disruption.

The requirements for an interim analysis or review of analysis which should lead to the determination of business continuity requirements.

The length of time that must be allowed following an incident before the organization can introduce new products, services or activities.

A

Determining impacts over time should demonstrate to top management how quickly the organization needs to respond to a disruption.

32
Q

GPG Reference: 19

One of the outcomes of Policy and Programme Management is a clearly defined scope for?

The business impact analysis (BIA), which can be validated to ensure that the objectives of the business continuity programme are being met.

The business continuity policy which can be validated to ensure that the objectives of the business continuity programme are being met.

The business continuity programme, which can be validated to ensure that the objectives of the business impact analysis (BIA) are being met.

The business continuity programme, which can be validated to ensure that the objectives of the business continuity policy are being met.

A

The business continuity programme, which can be validated to ensure that the objectives of the business continuity policy are being met.

33
Q

GPG Reference: 29

When understanding and influencing organizational culture, which of the following is required to ensure successful embedding of business continuity?

Usage of existing events and communication channels where possible to communicate the benefits and return on investment.

Establishment of a project to identify the most effective new communication channels to communicate business continuity goals.

Usage of existing middle management and operational staff to communicate return on investment outside the organization.

Creation of new events and communication channels where possible to communicate the benefits and return on investment across the organization.

A

Usage of existing events and communication channels where possible to communicate the benefits and return on investment.

34
Q

GPG Reference: 38

What are the 4 types of business impact analysis (BIA):

Introductory, Activity, Product and Service, and Process.

Risk, Product and Service, Activity, and Process.

Product and Service, High-level, Process, and Activity.

Initial, Product and Service, Process, and Activity.

A

Initial, Product and Service, Process, and Activity.

35
Q

GPG Reference: 91

What should those responsible for managing risks associated with exercises ensure?

There is a process to quickly end an exercise if actual unintended disruption occurs.

There is adequate catering during the exercise.

The risk of something going wrong is understood and accepted by the participants.

Other building occupants are notified of the date and time when the exercise will be run.

A

There is a process to quickly end an exercise if actual unintended disruption occurs.

36
Q

GPG Reference: 23

When should competencies and skills of individuals be reviewed?

Annually on the anniversary of when they were approved as defined within the business continuity policy.

When new products or services are introduced into the organization within the scope of the business continuity policy.

At pre-agreed intervals or following significant change as defined within the business continuity policy.

At monthly review meetings with relevant stakeholders as defined within the business continuity policy.

A

At pre-agreed intervals or following significant change as defined within the business continuity policy.

37
Q

GPG Reference: 19

What would you use a cost benefit analysis for?

To decide how to define the scope of the business continuity policy.

To decide how to define the scope of business continuity governance.

To decide how to define the scope of the business continuity programme.

To decide how to define the scope of the business continuity process.

A

To decide how to define the scope of the business continuity programme.

38
Q

GPG Reference: 18

What should you do when reviewing an existing policy and programme?

The scope should be reconsidered to reflect any change in the organization’s gap analysis processes.

The scope should be reconsidered to reflect any change in the organization’s overall strategy or operating environment.

The scope should be changed to reflect any restructure of the organization’s products or services outside the programme.

The scope should be reconsidered to reflect any change in the organization’s overall staffing levels.

A

The scope should be reconsidered to reflect any change in the organization’s overall strategy or operating environment.

39
Q

GPG Reference: 76

______ are created to address the strategic, tactical and operational requirements of an organisation. (Please select one choice to correctly complete the sentence)

Business Continuity Policies.

Business Continuity Plans.

Business Continuity Systems.

Business Continuity Solutions.

A

Business Continuity Plans.

40
Q

GPG Reference: 45

Which of the following is NOT a step included in the product and services BIA process?

Reviewing impacts as well as the criteria to determine the MBCO.

Documenting the impacts of a product or service group delivery failure.

Define any impacts not considered by top management, such as backlogs and capacity issues.

Understanding the potential impact of significant developments within the organisation or the operating environment.

A

Define any impacts not considered by top management, such as backlogs and capacity issues.

41
Q

GPG Reference: 44

Which of one of the following is NOT an outcome from an “initial” Business Impact Analysis (BIA)?

Estimated MTPDs for products and services.

A breakdown of internal and external activity dependencies.

Clarification or modification of the scope of the business continuity programme.

A list of processes and owners that contribute to the delivery of the product and services.

A

Clarification or modification of the scope of the business continuity programme.

42
Q

GPG Reference: 67

When conducting a cost benefit analysis, how do you measure the benefit from reducing the “likelihood” of a threat?

By estimating the reduction in the impact of the risk or threat to the organization in terms of cost, after the mitigation measure has been put in place and multiplying it by the likelihood of the threat occurring.

By estimating the increase in likelihood of the threat being realised after the mitigation measure has been put in place, and multiplying it by the impact on the organization if the threat was realised, in terms of cost.

By estimating the reduction in likelihood of the threat being realised after the mitigation measure has been put in place, and multiplying it by the impact on the organization if the threat was realised, in terms of cost.

By estimating the increase in the impact of the risk or threat to the organization in terms of cost, after the mitigation measure has been put in place and multiplying it by the likelihood of the threat occurring.

A

By estimating the reduction in likelihood of the threat being realised after the mitigation measure has been put in place, and multiplying it by the impact on the organization if the threat was realised, in terms of cost.

43
Q

GPG Reference: 105

What should an outcome of management review during Validation of the business continuity management lifecycle include?

An action plan for improvements.

Highlighted areas for consideration.

Identifying shortfall in requirements.

Comparison of budget against expenditure.

A

An action plan for improvements.

44
Q

GPG Reference: 65

Which of the following is an outcome associated with designing business continuity solutions?

The approach to continuity solutions when developing and implementing plans.

A set of business continuity solutions which are agreed by the business continuity team.

An initial recommendation of resource requirements to be used.

A set of business continuity solutions which are agreed by top management.

A

A set of business continuity solutions which are agreed by top management.

45
Q

GPG Reference: 37

What is the purpose of the Analysis professional practice within the business continuity management lifecycle?

Reviews and assesses an organisation to identify its key products and services, and how it functions during a threat.

Reviews and assesses an organisation to identify its objectives and selects appropriate solutions to determine how continuity can be achieved.

Reviews and assesses an organisation to identify its objectives, how it functions and the constraints of its operating environment.

Reviews and assesses an organisation to identify its objectives and ensure that the business continuity plans and procedures in place are effective.

A

Reviews and assesses an organisation to identify its objectives, how it functions and the constraints of its operating environment.

46
Q

GPG Reference: 91

What is an outcome of developing an exercise programme?

Improved organizational resilience, with a demonstrable capability to respond to, and recover from, an incident or crisis over time.

Improved organization plan that includes recommendations for cultural change in the face of an incident or crisis overtime.

Improved financial response which defines the objectives, methods required, proposed timing and resource requirements in an incident or crisis overtime.

Improved risk assessment programme defining resource requirements and proposed timing, and training requirements.

A

Improved organizational resilience, with a demonstrable capability to respond to, and recover from, an incident or crisis over time.

47
Q

GPG Reference: 67

When should mitigation measures be reviewed?

At monthly review meetings with the relevant stakeholders.

Annually on the anniversary of when they were approved.

At pre-agreed intervals or following significant change.

At quarterly review meetings with the relevant stakeholders.

A

At pre-agreed intervals or following significant change.

48
Q

GPG Reference: 103

Which of the following is NOT an outcome of a performance appraisal of an individual tasked with a role in the business continuity programme?

An improvement in the way in which an individual is incentivised.

An improvement in the way an individual carries out their role.

An improvement in the way an individual undertakes their responsibilities.

An improvement in the way an individual meets their objectives.

A

An improvement in the way in which an individual is incentivised.

49
Q

GPG Reference: 21

What does the organisation ensure by assigning a member of top management overall accountability for business continuity effectiveness?

Business continuity is recognised as a key activity within the organisation.

Appropriate budget is allocated to the business continuity programme.

Implementation can be achieved at departmental levels within the organisation.

The organisation regularly reviews governance of the business continuity policy.

A

Business continuity is recognised as a key activity within the organisation.

50
Q

GPG Reference: 38

What is the definition of business continuity requirements?

The time frames, resources, and capabilities necessary to conduct risk assessments on the organization’s products, services, processes, and activities to avoid a disruption.

The determination of the business continuity staff’s job descriptions and training requirements for those who will take a lead in creating and implementing the various business impact analyses.

The time frames, resources, and capabilities necessary to continue to deliver the prioritised products, services, processes, and activities following a disruption.

A list of the documents and processes which should be gathered together to initiate the business impact analysis stage of the organization’s business continuity policy.

A

The time frames, resources, and capabilities necessary to continue to deliver the prioritised products, services, processes, and activities following a disruption.

51
Q

GPG Reference: 56

What do top management often use to guide them when agreeing the most appropriate Business Continuity solutions?

Cost versus performance.

Benefit versus performance.

Cost versus benefit.

Profit versus turnover.

A

Cost versus benefit.

52
Q

GPG Reference: 18

Which of the following is an activity within the process to determine the scope of the business continuity programme?

Establish the business continuity programme budget and advise on how this will be allocated.

Establish a steering group or team to oversee, advise and make recommendations to top management.

Establish risk assessments and mitigation schedules for the removal of exposure to incidents.

Establish the requirements for a business continuity training programme for top management.

A

Establish a steering group or team to oversee, advise and make recommendations to top management.

53
Q

GPG Reference: 19

Which of the following methods and techniques are NOT used to decide how to define the scope of the business continuity programme?

Third party competitor analysis.

SWOT Analysis (Strengths, Weaknesses Opportunities & Threats)

Market analysis techniques

BIA (Business impact analysis).

A

Third party competitor analysis.

54
Q

GPG Reference: 83

In the implementation stage, tactical plans should consider aspects of business continuity solutions that may involve what?

Prioritised activities and resources available from competitors.

Prioritised activities and resources available outside the organisation.

Prioritised activities and resources available from interested stakeholders.

Prioritised activities and resources available from inside the organisation.

A

Prioritised activities and resources available outside the organisation.

55
Q

GPG Reference: 90

Test is defined as a unique exercise that incorporates which of the following elements?

Structured events.

Unplanned scenarios.

Practical rehearsals.

Expectation of a pass or fail.

A

Expectation of a pass or fail.

56
Q

GPG Reference: 72

Which of the following activities does the operational team undertake in the response structure?

The deployment of appropriate strategies created by the organization to control an incident.

The continuity of the activities that contribute to the process or processes that deliver the prioritised products and services.

The direction for the resumption of business units according to the agreed priorities as detailed in the business continuity plans.

Guidance for recovery that prevents the need for top management to be involved.

A

The continuity of the activities that contribute to the process or processes that deliver the prioritised products and services.

57
Q

GPG Reference: 14

What does the business continuity policy provide?

The intention and direction of an organisation as expressed by the Steering Group.

The intention and direction of an organisation during an incident.

The intentions and direction of an organisation as formally expressed by its top management.

The intention and direction of an organisation as expressed by the business continuity team.

A

The intentions and direction of an organisation as formally expressed by its top management.

58
Q

GPG Reference: 102

Improvement in ________ should be the outcome of Quality Assurance during Validation of the business continuity management lifecycle. (Please select one choice to correctly complete the sentence)

The training programme which defines proposed timings and resource and training requirements.

The financial programme which funds the objectives, methods, resource and training requirements.

The way the outputs from the business continuity programme meet the organization’s requirements and expectations.

The risk assessment programme defining the objectives and methods required along with defining resource requirements and proposed timing.

A

The way the outputs from the business continuity programme meet the organization’s requirements and expectations.

59
Q

GPG Reference: 25

Which of the following does the business continuity programme documentation NOT include?

Business continuity programme of activities.

Exercise Reports.

Response Structure.

Business Continuity team job descriptions.

A

Business Continuity team job descriptions.

60
Q

GPG Reference: 13

What does Policy and Programme Management define?

It defines how business continuity policy should be embedded.

It defines how business continuity policy should be managed.

It defines how business continuity policy should be developed.

It defines how business continuity policy should be implemented.

A

It defines how business continuity policy should be implemented.

61
Q

GPG Reference: 14

What sets out the purpose, context, scope, and governance of the business continuity programme?

Business Continuity Policy.

Business Continuity Process.

Business Continuity Plan.

Business Continuity Governance.

A

Business Continuity Policy.

62
Q

GPG Reference: 64

When designing solutions, what can outsourced service providers provide?

They can provide support only insofar as their performance during an incident can be directly supervised and controlled.

They can provide advisor services and review lessons learned to the crisis management team during an incident.

They can provide a product or service, provide process infrastructure, and takeover disrupted activities.

They can provide alternative jobs and income for displaced or out of work employees as a result of an incident.

A

They can provide a product or service, provide process infrastructure, and takeover disrupted activities.

63
Q

GPG Reference: 14

What sets out the purpose, context, scope, and governance of the business continuity programme?

Business Continuity Policy.

Business Continuity Process.

Business Continuity Plan.

Business Continuity Governance.

A

Business Continuity Policy.

Business Continuity Process.

Business Continuity Plan.

Business Continuity Governance.

64
Q

GPG Reference: 67

When conducting a cost benefit analysis, how do you measure the benefit from reducing the “likelihood” of a threat?

By estimating the reduction in the impact of the risk or threat to the organization in terms of cost, after the mitigation measure has been put in place and multiplying it by the likelihood of the threat occurring.

By estimating the increase in likelihood of the threat being realised after the mitigation measure has been put in place, and multiplying it by the impact on the organization if the threat was realised, in terms of cost.

By estimating the reduction in likelihood of the threat being realised after the mitigation measure has been put in place, and multiplying it by the impact on the organization if the threat was realised, in terms of cost.

By estimating the increase in the impact of the risk or threat to the organization in terms of cost, after the mitigation measure has been put in place and multiplying it by the likelihood of the threat occurring.

A

By estimating the reduction in likelihood of the threat being realised after the mitigation measure has been put in place, and multiplying it by the impact on the organization if the threat was realised, in terms of cost.

65
Q

GPG Reference: 103

Which of the following is NOT an outcome of a performance appraisal of an individual tasked with a role in the business continuity programme?

An improvement in the way in which an individual is incentivised.

An improvement in the way an individual carries out their role.

An improvement in the way an individual undertakes their responsibilities.

An improvement in the way an individual meets their objectives.

A

An improvement in the way in which an individual is incentivised.

BCI (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions